CVE Vulnerabilities

CVE-2015-2189

Published: Mar 08, 2015 | Modified: Nov 07, 2023
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu

Off-by-one error in the pcapng_read function in wiretap/pcapng.c in the pcapng file parser in Wireshark 1.10.x before 1.10.13 and 1.12.x before 1.12.4 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via an invalid Interface Statistics Block (ISB) interface ID in a crafted packet.

Affected Software

Name Vendor Start Version End Version
Wireshark Wireshark 1.10.8 1.10.8
Wireshark Wireshark 1.12.0 1.12.0
Wireshark Wireshark 1.10.6 1.10.6
Wireshark Wireshark 1.10.9 1.10.9
Wireshark Wireshark 1.10.12 1.10.12
Wireshark Wireshark 1.10.10 1.10.10
Wireshark Wireshark 1.10.0 1.10.0
Wireshark Wireshark 1.12.2 1.12.2
Wireshark Wireshark 1.10.3 1.10.3
Wireshark Wireshark 1.10.2 1.10.2
Wireshark Wireshark 1.10.1 1.10.1
Wireshark Wireshark 1.12.1 1.12.1
Wireshark Wireshark 1.10.7 1.10.7
Wireshark Wireshark 1.10.4 1.10.4
Wireshark Wireshark 1.12.3 1.12.3
Wireshark Wireshark 1.10.5 1.10.5
Wireshark Wireshark 1.10.11 1.10.11

References